Jobs
>
Garland

    SOC Analyst II - Garland, United States - Apex Systems

    Apex Systems
    Apex Systems Garland, United States

    3 weeks ago

    Apex Systems background
    Description

    SOC Analyst II - Remote EST - $45-55/hr - W2 Only

    *Candidate must be able to work on client's W2 without sponsorship, vendor or employer*

    As technology continues to advance so does the threat landscape. Attackers are now using more sophisticated tactics to evade security controls. As a result, our team must also continue to advance its capabilities in threat detection and monitoring systems.

    The SOC Tier II Analyst is responsible for monitoring, analysis, response, and escalation of security incidents and events. The Security Operations Center is the first line of detection and defense which actively monitors the SIEM (Security Information & Event Management), reviews log and event data, and works tickets associated with said data. Providing research using internal and open source tools, resolving and escalating incidents using established policies and procedures.

    How You Will Make a Difference:

    • Monitoring and analysis of logs, alerts, and external data sources to determine any security and/or operational impact to the organization.
    • Performs research on security events and threat intelligence data using internal and open source tool. Performing proactive threat research and validation for security event data generated from monitoring tools and/or manual analysis.
    • Creation of Reference Sets within the SIEM tool to assist Tier 1 SOC Analysts with threat research.
    • Monitoring IPS (Intrusion Prevention System) events and performing analysis on the data providing recommended actions or escalating to incident analysts for further review.
    • Trains all new SOC Tier I Analysts in the usage or all security tools and the execution of all SOC procedures.
    • Acts as an escalation point for the Tier I SOC Analysts. Resolves or escalates cyber security incidents and events as part of the established policies and procedures.
    • Assists with the containment of threats and remediation of the environment during or following an incident.
    • Collaborates with technical teams to identify, resolve, and mitigate security events as part of the Incident Response Plan.
    • Evaluates unwarranted changes within the environment as part of monitoring rules within the SIEM tool.
    • Creates and executes SOC compliance reports as necessary for risk and compliance teams.
    • Monitors SIEM environment for Global organization, providing resolution to events and incidents triggered within the SIEM tool as part of the day to day operations.
    • Ensures that critical infrastructure is reporting into the SIEM and reports any systems that are not reporting to the appropriate team/s.
    • Performs documentation of event analysis and records this data within our Incident Tracking tool. Ensuring all relevant data is captured within each incident.
    • Assists with the triage of service requests from internal teams within the organization through our incident ticketing system.
    • Enhances detections, alerts, and other cyber event correlation rules within the SIEM to reduce false positives.
    • Approves various block requests originated by the Tier I SOC Analysts.
    • Manages the SOC documentation repository by providing oversight of the annual SOC Documentation review process. Provides recommendations for procedural updates and improvements. Reviews recommendations proposed by Tier I SOC Analysts.
    • Represent the Security Operations team in various SOC, Incident Response, and Cyber Security projects.

    Years of Related Professional Experience: 3+ years

    Educational/ Position Requirements:

    Position Requirements:

    • Experience executing security incident handling processes and procedures.
    • Working knowledge of Networking fundamentals including but not limited to; The OSI Model, TCP/IP, DNS (Domain Name System), HTTP, SMTP), System Administration and/or Architecture.
    • Proficient understanding of various Operating Systems and their architectures: Windows, Unix/Linux and OSx.
    • Previous experience operating and tuning SIEM tools,IBM QRadar experience preferred .
    • Effective communication skills with the ability to work in a highly collaborative environment across many different disciplines.
    • Strong relationship skills and collaborative style to enable success across multiple business partners with a focus on building partnerships.
    • Excellent analytical and problem-solving skills.
    • Scripting capabilities in bash, python, ruby considered a plus.

    Educational Requirements:

    • A bachelors degree in computer science, information systems or other related field (preferred); or equivalent work experience.
    • Professional security management certifications such as; Global Information Assurance Certification (GIAC) certifications such as GCIA, GCIH, Certified Information Systems Security Professional (CISSP) or other similar credentials are a plus.
  • Financial Consulting & Trading International

    SOC Analyst

    3 weeks ago

    Financial Consulting & Trading International Plano, United States

    · Monitor security alerts and incidents using various security information and event management (SIEM) tools. · Analyze network traffic, logs, and security events to identify potential security threats and vulnerabilities. · Conduct in-depth investigations into security incident ...

  • Armor

    SOC Analyst II

    2 weeks ago

    Armor Richardson, United States Full time

    At Armor, we are committed to making a meaningful difference in securing cyberspace. Our vision is to be the trusted protector and de facto standard that cloud-centric customers entrust with their risk. We strive to continuously evolve to be the best partner of choice, breaking n ...

  • Tekfortune Inc

    SOC Analyst

    2 weeks ago

    Tekfortune Inc Dallas, United States

    Tekfortune is a fast-growing consulting firm specialized in permanent, contract & project-based staffing services for world's leading organizations in a broad range of industries. In this quickly changing economic landscape, virtual recruiting and remote work are critical for the ...

  • Health Care Service Corporation

    SOC Analyst

    4 weeks ago

    Health Care Service Corporation Dallas, United States

    At HCSC, we consider our employees the cornerstone of our business and the foundation to our success. We enable employees to craft their career with curated development plans that set their learning path to a rewarding and fulfilling career. · Come join us and be part of a purpo ...

  • Armor

    SOC Analyst III

    2 weeks ago

    Armor Richardson, United States Full time

    At Armor, we are committed to making a meaningful difference in securing cyberspace. Our vision is to be the trusted protector and de facto standard that cloud-centric customers entrust with their risk. We strive to continuously evolve to be the best partner of choice, breaking n ...

  • Armor Defense Inc

    SOC Analyst II

    2 weeks ago

    Armor Defense Inc Plano, United States

    Job Description · Job Description At Armor, we are committed to making a meaningful difference in securing cyberspace. Our vision is to be the trusted protector and de facto standard that cloud-centric customers entrust with their risk. We strive to continuously evolve to be the ...

  • Armor Defense

    SOC Analyst III

    3 weeks ago

    Armor Defense Plano, United States

    Job Description · Job Description · At Armor, we are committed to making a meaningful difference in securing cyberspace. Our vision is to be the trusted protector and de facto standard that cloud-centric customers entrust with their risk. We strive to continuously evolve to be ...

  • Armor Defense Inc

    SOC Analyst III

    2 weeks ago

    Armor Defense Inc Plano, United States

    Job Description · Job DescriptionAt Armor, we are committed to making a meaningful difference in securing cyberspace. Our vision is to be the trusted protector and de facto standard that cloud-centric customers entrust with their risk. We strive to continuously evolve to be the b ...

  • Danta Technologies

    Sr SOC Analyst Lead

    2 weeks ago

    Danta Technologies Frisco, United States

    Sr SOC Analyst Lead in Texas, Frisco - Remote · PST shift (06 pm CET to 02 am CET) · Primary Skills: · " Should have experience in SIEM-Splunk analysis of notable events. · " Monitor Splunk Console & Dashboards and provide response to the reported incidents. · " Perform ini ...

  • Citi

    SOC Insider Threat Analyst Lead, VP

    1 week ago

    Citi Irving, United States Full time

    About Citi: · Citi, the leading global bank, has approximately 200 million customer accounts and does business in more than 160 countries and jurisdictions. Citi provides consumers, corporations, governments, and institutions with a broad range of financial products and services ...

  • Comcast

    Tier 3 Network Security

    1 week ago

    Comcast Plano, United States

    Comcast Business offers a suite of Connectivity, Communications, Networking, Cybersecurity, Wireless, and Managed Solutions to help global organizations of all sizes prepare for whats next. Powered by the nations largest Gig-speed broadband network and backed by 24/7 customer sup ...

  • Diverse Lynx

    IT Operations Analyst

    3 weeks ago

    Diverse Lynx Plano, United States

    Job Title: IT Operations Analyst · Location : Plano, TX - Only Local · Job Type : Contract · Job Description : · Job responsibilities Analyze and provide solution to low complexity and routine computer issues · Work together with vendors to aid repairs of hardware, i.e. print ...

  • RAC Brands

    Cyber Security Analyst III

    3 weeks ago

    RAC Brands Plano, United States

    Job Description · Upbound Group · CYBER SECURITY ANALYST III · JOB PURPOSE: · As a Cyber Security Analyst III at Upbound, your primary responsibility is to deliver advanced technical analysis, guidance, and mitigation strategies for logical security threats impacting our infrast ...

  • Evermore Orlando Resort

    Sr. Security Analyst

    3 weeks ago

    Evermore Orlando Resort Addison, United States

    Job Summary · The Sr. Security Analyst plays a critical role at Elevate. This role will provide an expert level of consultation to the organization in the area of technology regulatory compliance, managing other control frameworks and legislation such as Sarbanes Oxley, GLBA, SO ...

  • Atmos Energy

    Mgr IT Security Operations

    4 weeks ago

    Atmos Energy Dallas, United States

    THIS JOB DESCRIPTION DOES NOT ATTEMPT TO LIST ALL OF THE DUTIES THAT ARE OR MAY BE PERFORMED IN THIS POSITION · Primary Duties · 1.Directs and oversees all aspects of SOC operations, ensuring effective monitoring, detection, and response to security incidents. · 2.Develops and ...

  • GTN Technical Staffing and Consulting

    Cyber Security Engineer

    2 weeks ago

    GTN Technical Staffing and Consulting Dallas, United States

    NO THIRD PARTY CANDIDATES. ONLY CANDIDATES THAT DON'T REQUIRE SPONSORSHIP - MUST BE ABLE TO CONVERT TO PERM WITHOUT SPONSORSHIP. WILL NOT BE CONSIDERED IF CAN'T. · Cybersecurity Engineer · DETAILS · Location: Dallas, TX · Work Schedule: Hybrid - 2/3 in-office/remote · Position T ...

  • Health Care Service Corporation

    Security Operation Center Consultant-3rd shift

    4 weeks ago

    Health Care Service Corporation Dallas, United States Full time

    At HCSC, we consider our employees the cornerstone of our business and the foundation to our success. We enable employees to craft their career with curated development plans that set their learning path to a rewarding and fulfilling career. · Come join us and be part of a purpos ...

  • Brooksource

    Senior Data Engineer

    3 weeks ago

    Brooksource Dallas, United States

    Senior Data Engineer · 6+ Month Contract · Chicago, Boston, Dallas, or Washington, DC Area · Summary: · We are seeking a highly experienced Senior Data Engineer with a deep understanding of PySpark using Databricks or AWS Glue or AWS EMR and cloud-based databases such as Snowfla ...

  • Publicis Sapient

    GCP Incident Response Engineer

    3 weeks ago

    Publicis Sapient Dallas, United States

    Job Description · As an Incident response Engineer, you will be a part of a smart cross-functional team delivering digital business transformation solutions to our clients. You'll have the unique opportunity to increase the engineering team productivity by developing and overseei ...

  • IMRI Technology & Engineering Solutions

    Cybersecurity Project Manager

    2 weeks ago

    IMRI Technology & Engineering Solutions Dallas, United States

    Job Description · Job DescriptionRemote work opportunity with IMRI · IMRI is looking for a Cybersecurity Project Manager with 5-7 years of experience working with SIEM, particularly QRadar, to lead the integration and upgrade project. Here's a breakdown of the scope of work: · In ...